Emva kweminyaka emibini enesiqingatha yophuhliso, ukukhululwa okubalulekileyo kwe-ftp server ye-ProFTPD 1.3.8 iye yapapashwa, kunye namandla ekwandisweni kunye nokusebenza, kunye nobuthathaka ekuchongweni kwexesha elithile lobuthathaka obunobungozi. Ukukhutshwa kokulungiswa kweProFTPD 1.3.7f kufumaneka ngexesha elifanayo kwaye kuya kuba ngowokugqibela kwi-ProFTPD 1.3.7 series.
Iinguqulelo eziphambili zeProFTPD 1.3.8:
- Inkxaso ye-CSID (i-ID yoMthengi / ye-Server) Umyalelo we-FTP uphunyeziwe, ongasetyenziselwa ukuthumela ulwazi ukuchonga isofthiwe yeklayenti kumncedisi kwaye ufumane impendulo ngolwazi lokuchonga umncedisi. Umzekelo, umxhasi unokuchwetheza "CSID Name=BSD FTP; Uguqulelo=7.3" kwaye ufumane "200 Name=ProFTPD; Inguqulelo=1.3.8; OS=Ubuntu Linux; OSVer=22.04; CaseSensitive=1; DirSep=/;".
- Inkxaso eyongeziweyo yolwandiso lwe-"home-directory" ukwandisa i ~/ kunye ne ~umsebenzisi/ iindlela zokuphunyezwa kweprotocol yeSFTP. Ungasebenzisa "iSFTExtensions homeDirectory" ukuyivula.
- Inkxaso eyongeziweyo ye-AES-GCM ciphers kwi-mod_sftp "[imeyile ikhuselwe]"Kwaye"[imeyile ikhuselwe]", kunye nokujikeleziswa kwezitshixo zenginginya ("SFTPOptions NoHostkeyRotation") usebenzisa i-OpenSSH izandiso "[imeyile ikhuselwe]"Kwaye"[imeyile ikhuselwe]". Inkxaso yokwenza i-AES GCM ciphers yongezwe kumyalelo weSFTPCiphers.
- Kongezwe "--enable-pcre2" ukhetho lokwakha ngelayibrari yePCRE2 endaweni yePCRE. Ukukwazi ukukhetha injini yokubonisa rhoqo phakathi kwe-PCRE2, iPOSIX kunye ne-PCRE yongezwe kumyalelo weRegexOptions.
- Yongeza i-SFTPHostKeys isiyalele ukukhankanya ii-algorithms ezingundoqo ezinikezelwa kubathengi bemodyuli ye-mod_sftp.
- I-Facts AddedDefault Umyalelo wokuchaza ngokucacileyo uluhlu "lweenyani" ezibuyiselwe kwiimpendulo zeMLSD/MLSD FTP.
- Yongezwe i-LDAPConnectTimeout yomyalelo ukuchaza ixesha lokuphuma koqhagamshelwano kwiseva ye-LDAP.
- Umyalelo we-ListStyle wongezwe ukwenzela ukuba kudweliswe imixholo yabalawuli kwisimbo seWindows.
- Umyalelo weRedisLogFormatExtra uphunyeziwe ukongeza izitshixo zesiko kunye namaxabiso kwilogi ye-JSON, equkwe yiRedisLogOnCommand kunye neRedisLogOnEvent imiyalelo.
- I-MaxLoginAttemptsFromUser ipharamitha yongezwe kumyalelo weBanOnEvent ukuvala indibaniselwano enikiweyo yabasebenzisi kunye needilesi ze-IP.
- Inkxaso eyongeziweyo ye-TLS xa idibanisa kwi-Redis DBMS kumyalelo weRedisSentinel. Inkxaso eyongeziweyo kumyalelo weRedisServer wolungelelwaniso lomyalelo we-AUTH olungisiweyo osetyenzisiweyo ukusukela kwiRedis 6.x.
- Inkxaso ye-ETM (Encrypt-En-MAC) i-hashes yongezwe kwi-SFTPDigests umyalelo.
- Kongezwe iflegi ye-ReusePort kumyalelo we-SocketOptions ukwenza i-SO_REUSEPORT imo yesokethi isebenze.
- Iflegi ye-AllowSymlinkUpload yongezwe kumyalelo weTransferOptions ukubuyisela ukukwazi ukulayisha kwiilinki eziyisimboli.
- Inkxaso ye "curve448-sha512" i-algorithm yokutshintshiselana engundoqo yongezwe kumyalelo weSFTPKeyExchanges.
- Ikhono lokutshintsha iifayile ezongezelelweyo kwiitafile zokuvumela / ukukhanyela zongezwe kwimodyuli ye-mod_wrap2.
- Ixabiso elimiselweyo le-FSCachePolicy parameter litshintshiwe ku-"off".
- Imodyuli ye-mod_sftp ilungiselelwe ukusetyenziswa nethala leencwadi le-OpenSSL 3.x.
- Inkxaso eyongeziweyo yokwakha kunye nethala leencwadi le-libidn2 lokusebenzisa amaGama eDomain aMazwe ngaMazwe (IDNs).
- Into eluncedo ye-ftpasswd yokuvelisa i-password hashes ine-SHA256 endaweni ye-MD5 eyenziwe ngokuzenzekelayo.
umthombo: opennet.ru